Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/mYCNzNwitd-QKJNBM21x2_SPbgI.roa
File: mYCNzNwitd-QKJNBM21x2_SPbgI.roa (raw, json)
Hash identifier: OD6zgB9aEYbHnuylqlAGfC1E52K0gMNFKXDVpV+3s0E=
Subject key identifier: 99:80:8D:CC:DC:22:B5:DF:90:28:93:41:33:6D:71:DB:F4:8F:6E:02
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D5F
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/mYCNzNwitd-QKJNBM21x2_SPbgI.roa
Signing time: Mon 26 Aug 2024 05:19:44 +0000
ROA not before: Mon 26 Aug 2024 05:19:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 61.61.0.0/17 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3423 (0xd5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:44 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=99808DCCDC22B5DF90289341336D71DBF48F6E02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b4:c8:9f:2a:0b:04:99:a0:29:0c:1f:57:e5:
a7:8f:99:e8:17:3a:aa:94:bc:4b:ba:28:c3:e2:5b:
c4:8e:4b:ca:19:9e:af:00:c7:15:80:40:72:13:90:
df:3f:e0:86:c2:e7:fc:9b:33:61:e7:87:17:8a:b5:
27:45:36:4b:93:d3:3f:89:d8:83:18:4c:6a:30:1e:
70:9f:c1:9d:c3:64:e7:74:c4:80:4a:b7:bb:c6:66:
61:8d:4f:42:2a:0c:70:d5:c1:2a:bb:9a:85:28:6d:
93:ea:54:08:24:e7:ac:bb:b2:06:e0:b9:82:bc:45:
58:50:ea:1f:70:fb:ca:0e:d0:da:3a:fb:e5:88:b2:
b5:1a:8d:74:89:f7:78:36:10:76:5b:05:9d:87:a6:
c5:e9:77:6f:1a:39:57:21:c7:ba:b8:b7:3a:a5:bf:
bb:b5:f3:09:35:11:65:1b:7f:1e:04:04:32:56:75:
6d:75:81:76:94:39:5b:c2:08:7b:49:fe:4d:54:15:
6f:3b:ed:99:a7:5f:99:cf:e5:8d:c1:d6:6f:7a:e8:
e5:81:a8:02:82:68:9d:b6:b3:11:11:ce:f8:a7:af:
72:57:02:84:01:c0:70:26:90:66:6c:3f:fb:9a:89:
22:9b:e5:a6:63:d4:cb:ee:43:5a:9b:2d:f2:e7:b4:
9d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:80:8D:CC:DC:22:B5:DF:90:28:93:41:33:6D:71:DB:F4:8F:6E:02
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/mYCNzNwitd-QKJNBM21x2_SPbgI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.0.0/17
Signature Algorithm: sha256WithRSAEncryption
03:f4:32:2b:c0:e8:e2:6a:62:15:65:fa:3f:4f:dc:22:3b:a3:
f9:59:86:e8:0e:6d:03:8d:c7:ea:88:bc:d2:4a:6f:0b:67:29:
6c:6e:c9:26:7e:9a:62:67:00:83:6f:96:a1:a3:2c:dc:d0:20:
f3:4d:6f:ed:ab:70:c5:82:15:d2:e9:0e:ea:4b:58:25:f6:7c:
03:63:03:6d:26:1e:c1:3e:a5:13:d1:5a:a2:2b:23:ee:11:9a:
17:37:95:bf:6f:84:68:62:9a:1d:c0:e5:96:09:cb:7d:c3:f3:
cf:1a:21:64:55:f2:92:58:b8:9e:18:0f:4d:65:ca:5f:a6:6a:
44:6e:2d:ce:13:c0:a9:46:56:8c:81:aa:0e:36:a4:7a:56:69:
e4:99:6d:75:3b:7c:ed:16:60:ca:f0:15:ad:ee:9d:62:70:e0:
cd:d3:e6:8c:04:fc:fb:c8:1d:30:0d:45:6b:d6:77:64:0b:7d:
2d:55:33:ab:7a:c1:4d:92:f5:24:ee:90:e4:97:b9:8e:2a:1a:
45:a0:0f:ea:2a:c0:56:a0:ef:2a:f4:71:f2:7c:35:40:d9:9f:
ae:75:fc:94:0b:1a:20:70:25:41:1f:b1:6b:0e:d9:8a:9f:47:
00:9f:36:f8:c7:83:15:c4:0f:08:35:8b:91:00:05:75:1e:f0:
ba:9d:51:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:27 2025 by rpki-client